83 Publications
2024 | Conference Paper | LibreCat-ID: 54863
Schmüser, Juliane, et al. “Analyzing Security and Privacy Advice During the 2022 Russian Invasion of Ukraine on Twitter.” Proceedings of the CHI Conference on Human Factors in Computing Systems, CHI 2024, Honolulu, HI, USA, May 11-16, 2024, edited by Florian ’Floyd’ Mueller et al., ACM, 2024, p. 574:1–574:16, doi:10.1145/3613904.3642826.
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 54862
Boughton, Lina, et al. “Decomposing and Measuring Trust in Open-Source Software Supply Chains.” Proceedings of the 2024 {ACM/IEEE} 44th International Conference on Software Engineering: New Ideas and Emerging Results, NIER@ICSE 2024, Lisbon, Portugal, April 14-20, 2024, ACM, 2024, pp. 57–61, doi:10.1145/3639476.3639775.
LibreCat
| DOI
2024 | Journal Article | LibreCat-ID: 54864
Horstmann, Stefan Albert, et al. “‘Those Things Are Written by Lawyers, and Programmers Are Reading That.’ Mapping the Communication Gap Between Software Developers and Privacy Experts.” Proc. Priv. Enhancing Technol., vol. 2024, no. 1, 2024, pp. 151–170, doi:10.56553/POPETS-2024-0010.
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 55633
Höltervennhoff, Sandra, et al. “A Mixed-Methods Study on User Experiences and Challenges of Recovery Codes for an End-to-End Encrypted Service.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55632
Fischer, Konstantin, et al. “The Challenges of Bringing Cryptography from Research Papers to Products: Results from an Interview Study with Experts.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55634
Fourné, Marcel, et al. “‘These Results Must Be False’: A Usability Evaluation of Constant-Time Analysis Tools.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55636
Huaman, Nicolas, et al. “‘You Have to Read 50 Different RFCs That Contradict Each Other’: An Interview Study on the Experiences of Implementing Cryptographic Standards.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55641
Panahi, Kabir, et al. “"But They Have Overlooked a Few Things in Afghanistan: " An Analysis of the Integration of Biometric Voter Verification in the 2019 Afghan Presidential Elections.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55642
Ramulu, Harshini Sri, et al. “Security and Privacy Software Creators’ Perspectives on Unintended Consequences.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Journal Article | LibreCat-ID: 58368
Zahan, Nusrat, et al. “S3C2 Summit 2023-11: Industry Secure Supply Chain Summit.” CoRR, vol. abs/2408.16529, 2024, doi:10.48550/ARXIV.2408.16529.
LibreCat
| DOI
2024 | Journal Article | LibreCat-ID: 58369
Tystahl, Greg, et al. “S3C2 Summit 2024-03: Industry Secure Supply Chain Summit.” CoRR, vol. abs/2405.08762, 2024, doi:10.48550/ARXIV.2405.08762.
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 56624 | 
Kostan, Anastassija, et al. “Exploring Digital Security and Privacy in Relative Poverty in Germany through Qualitative Interviews.” 33rd USENIX Security Symposium (USENIX Security 24), 2024, pp. 2029–2046.
LibreCat
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 47306
Herbert, Franziska, et al. “A World Full of Privacy and Security (Mis)Conceptions? Findings of a Representative Survey in 12 Countries.” Proceedings of the 2023 CHI Conference on Human Factors in Computing Systems, CHI 2023, Hamburg, Germany, April 23-28, 2023, edited by Albrecht Schmidt et al., ACM, 2023, p. 582:1–582:23, doi:10.1145/3544548.3581410.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47304
Wermke, Dominik, et al. “‘Always Contribute Back’: A Qualitative Study on Security Challenges of the Open Source Supply Chain.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 1545–1560, doi:10.1109/SP46215.2023.10179378.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47299
Krause, Alexander, et al. “Pushed by Accident: A Mixed-Methods Study on Strategies of Handling Secret Information in Source Code Repositories.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47310
Fourné, Marcel, et al. “It’s like Flossing Your Teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 1527–1544, doi:10.1109/SP46215.2023.10179320.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47311
Munyendo, Collins W., et al. “‘In Eighty Percent of the Cases, I Select the Password for Them’: Security and Privacy Challenges, Advice, and Opportunities at Cybercafes in Kenya.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 570–587, doi:10.1109/SP46215.2023.10179410.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47303
Keküllüoglu, Dilara, and Yasemin Acar. “‘We Are a Startup to the Core’: A Qualitative Interview Study on the Security and Privacy Development Practices in Turkish Software Startups.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 2015–2031, doi:10.1109/SP46215.2023.10179339.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47296
Kohno, Tadayoshi, et al. “Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversations.” CoRR, vol. abs/2302.14326, 2023, doi:10.48550/arXiv.2302.14326.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47305
Amft, Sabrina, et al. “‘Would You Give the Same Priority to the Bank and a Game? I Do Not!’ Exploring Credential Management Strategies and Obstacles during Password Manager Setup.” Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, edited by Patrick Gage Kelley and Apu Kapadia, USENIX Association, 2023, pp. 171–190.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47301
Höltervennhoff, Sandra, et al. “‘I Wouldn’t Want My Unsafe Code to Run My Pacemaker’: An Interview Study on the Use, Comprehension, and Perceived Risks of Unsafe Rust.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47298
Mink, Jaron, et al. “‘Security Is Not My Field, I’m a Stats Guy’: A Qualitative Root Cause Analysis of Barriers to Adversarial Machine Learning Defenses in Industry.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47842
Fourné, Marcel, et al. “It’s like Flossing Your Teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.” 2023 IEEE Symposium on Security and Privacy (SP), IEEE, 2023, doi:10.1109/sp46215.2023.10179320.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47295
Amft, Sabrina, et al. “Lost and Not Found: An Investigation of Recovery Methods for Multi-Factor Authentication.” CoRR, vol. abs/2306.09708, 2023, doi:10.48550/arXiv.2306.09708.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47294
Tran, Mindy, et al. “S3C2 Summit 2202-09: Industry Secure Suppy Chain Summit.” CoRR, vol. abs/2307.15642, 2023, doi:10.48550/arXiv.2307.15642.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47293
Dunlap, Trevor, et al. “S3C2 Summit 2023-02: Industry Secure Supply Chain Summit.” CoRR, vol. abs/2307.16557, 2023, doi:10.48550/arXiv.2307.16557.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47292
Enck, William, et al. “S3C2 Summit 2023-06: Government Secure Supply Chain Summit.” CoRR, vol. abs/2308.06850, 2023, doi:10.48550/arXiv.2308.06850.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47300
Kohno, Tadayoshi, et al. “Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversations.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47312
Neil, Lorenzo, et al. “Who Comes Up with This Stuff? Interviewing Authors to Understand How They Produce Security Advice.” Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, USENIX Association, 2023, pp. 283–299.
LibreCat
2023 | Journal Article | LibreCat-ID: 47291
Klemmer, Jan H., et al. “‘Make Them Change It Every Week!’: A Qualitative Exploration of Online Developer Advice on Usable and Secure Authentication.” CoRR, vol. abs/2309.00744, 2023, doi:10.48550/arXiv.2309.00744.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 53362
Amft, Sabrina, et al. “‘We’ve Disabled MFA for You’: An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments.” Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, CCS 2023, Copenhagen, Denmark, November 26-30, 2023, edited by Weizhi Meng et al., ACM, 2023, pp. 3138–3152, doi:10.1145/3576915.3623180.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 49438
Krüger, Stefan, et al. “Securing Your Crypto-API Usage Through Tool Support - A Usability Study.” 2023 IEEE Secure Development Conference (SecDev), IEEE, 2023, doi:10.1109/secdev56634.2023.00015.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 53369
Amft, Sabrina, et al. “‘We’ve Disabled MFA for You’: An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments.” Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, 2023, pp. 3138–3152.
LibreCat
2023 | Journal Article | LibreCat-ID: 53368
Fourné, Marcel, et al. “A Viewpoint on Human Factors in Software Supply Chain Security: A Research Agenda.” IEEE Security & Privacy, vol. 21, no. 6, IEEE, 2023, pp. 59–63.
LibreCat
2023 | Conference Paper | LibreCat-ID: 53366
Tran, Mindy, et al. “Security, Privacy, and Data-Sharing Trade-Offs When Moving to the United States: Insights from a Qualitative Study.” 2024 IEEE Symposium on Security and Privacy (SP), 2023, pp. 4–4.
LibreCat
2023 | Journal Article | LibreCat-ID: 53348
Fourné, Marcel, et al. “A Viewpoint on Human Factors in Software Supply Chain Security: A Research Agenda.” IEEE Secur. Priv., vol. 21, no. 6, 2023, pp. 59–63, doi:10.1109/MSEC.2023.3316569.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 53352
Simko, Lucy, et al. “The Use and Non-Use of Technology During Hurricanes.” Proc. ACM Hum. Comput. Interact., vol. 7, no. CSCW2, 2023, pp. 1–54, doi:10.1145/3610215.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 46500
Pottebaum, Jens, et al. “Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth.” 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), IEEE, 2023, pp. 379–85, doi:10.1109/eurospw59978.2023.00048.
LibreCat
| Files available
| DOI
| Download (ext.)
2022 | Conference Paper | LibreCat-ID: 47289
Huaman, Nicolas, et al. “If You Can’t Get Them to the Lab: Evaluating a Virtual Study Environment with Security Information Workers.” Eighteenth Symposium on Usable Privacy and Security, SOUPS 2022, Boston, MA, USA, August 7-9, 2022, edited by Sonia Chiasson and Apu Kapadia, USENIX Association, 2022, pp. 313–330.
LibreCat
2022 | Conference Paper | LibreCat-ID: 47844
Jancar, Jan, et al. “‘They’re Not That Hard to Mitigate’: What Cryptographic Library Developers Think About Timing Attacks.” 2022 IEEE Symposium on Security and Privacy (SP), IEEE, 2022, doi:10.1109/sp46214.2022.9833713.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47286
Gutfleisch, Marco, et al. “How Does Usable Security (Not) End Up in Software Products? Results From a Qualitative Interview Study.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 893–910, doi:10.1109/SP46214.2022.9833756.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47287
Stransky, Christian, et al. “27 Years and 81 Million Opportunities Later: Investigating the Use of Email Encryption for an Entire University.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 860–875, doi:10.1109/SP46214.2022.9833755.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47283
Kaur, Harjot, et al. “Where to Recruit for Security Development Studies: Comparing Six Software Developer Samples.” 31st USENIX Security Symposium, USENIX Security 2022, Boston, MA, USA, August 10-12, 2022, edited by Kevin R. B. Butler and Kurt Thomas, USENIX Association, 2022, pp. 4041–4058.
LibreCat
2022 | Journal Article | LibreCat-ID: 47290
Huaman, Nicolas, et al. “They Would Do Better If They Worked Together: Interaction Problems Between Password Managers and the Web.” IEEE Secur. Priv., vol. 20, no. 2, 2022, pp. 49–60, doi:10.1109/MSEC.2021.3123795.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47843
Wermke, Dominik, et al. “Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.” 2022 IEEE Symposium on Security and Privacy (SP), IEEE, 2022, doi:10.1109/sp46214.2022.9833686.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47288
Jancar, Jan, et al. “‘They’re Not That Hard to Mitigate’: What Cryptographic Library Developers Think About Timing Attacks.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 632–649, doi:10.1109/SP46214.2022.9833713.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47285
Wermke, Dominik, et al. “Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 1880–1896, doi:10.1109/SP46214.2022.9833686.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47284
Munyendo, Collins W., et al. “‘Desperate Times Call for Desperate Measures’: User Concerns with Mobile Loan Apps in Kenya.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 2304–2319, doi:10.1109/SP46214.2022.9833779.
LibreCat
| DOI
2022 | Journal Article | LibreCat-ID: 47281
Krause, Alexander, et al. “Committed by Accident: Studying Prevention and Remediation Strategies Against Secret Leakage in Source Code Repositories.” CoRR, vol. abs/2211.06213, 2022, doi:10.48550/arXiv.2211.06213.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 47265
Huaman, Nicolas, et al. “A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-Sized Enterprises.” 30th USENIX Security Symposium, USENIX Security 2021, August 11-13, 2021, edited by Michael Bailey and Rachel Greenstadt, USENIX Association, 2021, pp. 1235–1252.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47268
Stransky, Christian, et al. “On the Limited Impact of Visualizing Encryption: Perceptions of E2E Messaging Security.” Seventeenth Symposium on Usable Privacy and Security, SOUPS 2021, August 8-10, 2021, edited by Sonia Chiasson, USENIX Association, 2021, pp. 437–454.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47267
Huaman, Nicolas, et al. “They Would Do Better If They Worked Together: The Case of Interaction Problems Between Password Managers and Websites.” 2021 IEEE Symposium on Security and Privacy (SP), IEEE, 2021, doi:10.1109/sp40001.2021.00094.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 47266
Haney, Julie M., et al. “‘It’s the Company, the Government, You and I’: User Perceptions of Responsibility for Smart Home Privacy and Security.” 30th USENIX Security Symposium, USENIX Security 2021, August 11-13, 2021, edited by Michael Bailey and Rachel Greenstadt, USENIX Association, 2021, pp. 411–428.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47264
Oltrogge, Marten, et al. “Why Eve and Mallory Still Love Android: Revisiting TLS (In)Security in Android Applications.” 30th USENIX Security Symposium, USENIX Security 2021, August 11-13, 2021, edited by Michael Bailey and Rachel Greenstadt, USENIX Association, 2021, pp. 4347–4364.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47269
Neil, Lorenzo, et al. “Investigating Web Service Account Remediation Advice.” Seventeenth Symposium on Usable Privacy and Security, SOUPS 2021, August 8-10, 2021, edited by Sonia Chiasson, USENIX Association, 2021, pp. 359–376.
LibreCat
2021 | Dissertation | LibreCat-ID: 47271
Acar, Yasemin. Human Factors in Secure Software Development. University of Marburg, Germany, 2021.
LibreCat
2020 | Book Chapter | LibreCat-ID: 47261
Haney, Julie M., et al. “Smart Home Security and Privacy Mitigations: Consumer Perceptions, Practices, and Challenges.” HCI for Cybersecurity, Privacy and Trust, Springer International Publishing, 2020, doi:10.1007/978-3-030-50309-3_26.
LibreCat
| DOI
2020 | Conference Paper | LibreCat-ID: 47260
Wermke, Dominik, et al. “Cloudy with a Chance of Misconceptions: Exploring Users’ Perceptions and Expectations of Security and Privacy in Cloud Office Suites.” Sixteenth Symposium on Usable Privacy and Security, SOUPS 2020, August 7-11, 2020, edited by Heather Richter Lipford and Sonia Chiasson, USENIX Association, 2020, pp. 359–377.
LibreCat
2020 | Conference Paper | LibreCat-ID: 47262
Gorski, Peter Leo, et al. “Listen to Developers! A Participatory Design Study on Security Warnings for Cryptographic APIs.” Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems, ACM, 2020, doi:10.1145/3313831.3376142.
LibreCat
| DOI
2020 | Conference Paper | LibreCat-ID: 47879
Haney, Julie, et al. Smart Home Security and Privacy Mitigations: Consumer Perceptions, Practices, and Challenges. International Conference on Human-Computer Interaction, Copenhagen, -1, 2020.
LibreCat
2018 | Conference Paper | LibreCat-ID: 47253
Wu, Yuxi, et al. “Your Secrets Are Safe.” Proceedings of the 2018 World Wide Web Conference on World Wide Web - WWW ’18, ACM Press, 2018, doi:10.1145/3178876.3186088.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 47255
Haney, Julie M., et al. “‘We Make It a Big Deal in the Company’: Security Mindsets in Organizations That Develop Cryptographic Products.” Fourteenth Symposium on Usable Privacy and Security, SOUPS 2018, Baltimore, MD, USA, August 12-14, 2018, edited by Mary Ellen Zurko and Heather Richter Lipford, USENIX Association, 2018, pp. 357–373.
LibreCat
2018 | Report | LibreCat-ID: 47876
Haney, Julie, et al. Organizational Views of NIST Cryptographic Standards and Testing and Validation Programs. National Institute of Standards and Technology, 2018, doi:10.6028/nist.ir.8241.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 47256
Gorski, Peter Leo, et al. “Developers Deserve Security Warnings, Too: On the Effect of Integrated Security Advice on Cryptographic API Misuse.” Fourteenth Symposium on Usable Privacy and Security, SOUPS 2018, Baltimore, MD, USA, August 12-14, 2018, edited by Mary Ellen Zurko and Heather Richter Lipford, USENIX Association, 2018, pp. 265–281.
LibreCat
2018 | Conference Paper | LibreCat-ID: 47254
Oltrogge, Marten, et al. “The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators.” 2018 IEEE Symposium on Security and Privacy (SP), IEEE, 2018, doi:10.1109/sp.2018.00005.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 47252
Wermke, Dominik, et al. “A Large Scale Investigation of Obfuscation Use in Google Play.” Proceedings of the 34th Annual Computer Security Applications Conference, ACSAC 2018, San Juan, PR, USA, December 03-07, 2018, ACM, 2018, pp. 222–235, doi:10.1145/3274694.3274726.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47249
Derr, Erik, et al. “Keep Me Updated: An Empirical Study of Third-Party Library Updatability on Android.” Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2017, doi:10.1145/3133956.3134059.
LibreCat
| DOI
2017 | Journal Article | LibreCat-ID: 47309
Acar, Yasemin, et al. “How Internet Resources Might Be Helping You Develop Faster but Less Securely.” IEEE Secur. Priv., vol. 15, no. 2, 2017, pp. 50–60, doi:10.1109/MSP.2017.24.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47245
Stransky, Christian, et al. “Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers.” 10th USENIX Workshop on Cyber Security Experimentation and Test, CSET 2017, Vancouver, BC, Canada, August 14, 2017, edited by José M. Fernandez and Mathias Payer, USENIX Association, 2017.
LibreCat
2017 | Conference Paper | LibreCat-ID: 47243
Fischer, Felix, et al. “Stack Overflow Considered Harmful? The Impact of Copy&Paste on Android Application Security.” 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, May 22-26, 2017, IEEE Computer Society, 2017, pp. 121–136, doi:10.1109/SP.2017.31.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47250
Nguyen, Duc Cuong, et al. “A Stitch in Time: Supporting Android Developers in Writing Secure Code.” Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2017, doi:10.1145/3133956.3133977.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47248
Acar, Yasemin, et al. “Developers Need Support, Too: A Survey of Security Advice for Software Developers.” 2017 IEEE Cybersecurity Development (SecDev), IEEE, 2017, doi:10.1109/secdev.2017.17.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47242
Acar, Yasemin, et al. “You Are Not Your Developer, Either: A Research Agenda for Usable Security and Privacy Research Beyond End Users.” 2016 IEEE Cybersecurity Development (SecDev), IEEE, 2017, doi:10.1109/secdev.2016.013.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47246
Acar, Yasemin, et al. “Comparing the Usability of Cryptographic APIs.” 2017 IEEE Symposium on Security and Privacy (SP), IEEE, 2017, doi:10.1109/sp.2017.52.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47244
Acar, Yasemin, et al. “Security Developer Studies with GitHub Users: Exploring a Convenience Sample.” Thirteenth Symposium on Usable Privacy and Security, SOUPS 2017, Santa Clara, CA, USA, July 12-14, 2017, USENIX Association, 2017, pp. 81–95.
LibreCat
2017 | Report | LibreCat-ID: 47873
Redmiles, Elissa M., et al. A Summary of Survey Methodology Best Practices for Security and Privacy Researchers. University of Maryland Computer Science Department, 2017, doi:10.13016/M22K2W.
LibreCat
| DOI
2016 | Conference Paper | LibreCat-ID: 47240
Acar, Yasemin, et al. “SoK: Lessons Learned from Android Security Research for Appified Software Platforms.” 2016 IEEE Symposium on Security and Privacy (SP), IEEE, 2016, doi:10.1109/sp.2016.33.
LibreCat
| DOI
2016 | Conference Paper | LibreCat-ID: 47239
Dechand, Sergej, et al. “An Empirical Study of Textual Key-Fingerprint Representations.” 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, August 10-12, 2016, edited by Thorsten Holz and Stefan Savage, USENIX Association, 2016, pp. 193–208.
LibreCat
2016 | Conference Paper | LibreCat-ID: 47241
Acar, Yasemin, et al. “You Get Where You’re Looking for: The Impact of Information Sources on Code Security.” 2016 IEEE Symposium on Security and Privacy (SP), IEEE, 2016, doi:10.1109/sp.2016.25.
LibreCat
| DOI
2015 | Conference Paper | LibreCat-ID: 47233
Perl, Henning, et al. “VCCFinder: Finding Potential Vulnerabilities in Open-Source Projects to Assist Code Audits.” Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, ACM, 2015, doi:10.1145/2810103.2813604.
LibreCat
| DOI
2015 | Conference Paper | LibreCat-ID: 47232
Oltrogge, Marten, et al. “To Pin or Not to Pin-Helping App Developers Bullet Proof Their TLS Connections.” 24th USENIX Security Symposium, USENIX Security 15, Washington, D.C., USA, August 12-14, 2015, edited by Jaeyeon Jung and Thorsten Holz, USENIX Association, 2015, pp. 239–254.
LibreCat
2014 | Conference Paper | LibreCat-ID: 47162
Fahl, Sascha, et al. “Why Eve and Mallory (Also) Love Webmasters.” Proceedings of the 9th ACM Symposium on Information, Computer and Communications Security, ACM, 2014, doi:10.1145/2590296.2590341.
LibreCat
| DOI
2013 | Conference Paper | LibreCat-ID: 47161
Fahl, Sascha, et al. “On the Ecological Validity of a Password Study.” Proceedings of the Ninth Symposium on Usable Privacy and Security, ACM, 2013, doi:10.1145/2501604.2501617.
LibreCat
| DOI
83 Publications
2024 | Conference Paper | LibreCat-ID: 54863
Schmüser, Juliane, et al. “Analyzing Security and Privacy Advice During the 2022 Russian Invasion of Ukraine on Twitter.” Proceedings of the CHI Conference on Human Factors in Computing Systems, CHI 2024, Honolulu, HI, USA, May 11-16, 2024, edited by Florian ’Floyd’ Mueller et al., ACM, 2024, p. 574:1–574:16, doi:10.1145/3613904.3642826.
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 54862
Boughton, Lina, et al. “Decomposing and Measuring Trust in Open-Source Software Supply Chains.” Proceedings of the 2024 {ACM/IEEE} 44th International Conference on Software Engineering: New Ideas and Emerging Results, NIER@ICSE 2024, Lisbon, Portugal, April 14-20, 2024, ACM, 2024, pp. 57–61, doi:10.1145/3639476.3639775.
LibreCat
| DOI
2024 | Journal Article | LibreCat-ID: 54864
Horstmann, Stefan Albert, et al. “‘Those Things Are Written by Lawyers, and Programmers Are Reading That.’ Mapping the Communication Gap Between Software Developers and Privacy Experts.” Proc. Priv. Enhancing Technol., vol. 2024, no. 1, 2024, pp. 151–170, doi:10.56553/POPETS-2024-0010.
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 55633
Höltervennhoff, Sandra, et al. “A Mixed-Methods Study on User Experiences and Challenges of Recovery Codes for an End-to-End Encrypted Service.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55632
Fischer, Konstantin, et al. “The Challenges of Bringing Cryptography from Research Papers to Products: Results from an Interview Study with Experts.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55634
Fourné, Marcel, et al. “‘These Results Must Be False’: A Usability Evaluation of Constant-Time Analysis Tools.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55636
Huaman, Nicolas, et al. “‘You Have to Read 50 Different RFCs That Contradict Each Other’: An Interview Study on the Experiences of Implementing Cryptographic Standards.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55641
Panahi, Kabir, et al. “"But They Have Overlooked a Few Things in Afghanistan: " An Analysis of the Integration of Biometric Voter Verification in the 2019 Afghan Presidential Elections.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Conference Paper | LibreCat-ID: 55642
Ramulu, Harshini Sri, et al. “Security and Privacy Software Creators’ Perspectives on Unintended Consequences.” 33rd USENIX Security Symposium, USENIX Security 2024, Philadelphia, PA, USA, August 14-16, 2024, edited by Davide Balzarotti and Wenyuan Xu, USENIX Association, 2024.
LibreCat
2024 | Journal Article | LibreCat-ID: 58368
Zahan, Nusrat, et al. “S3C2 Summit 2023-11: Industry Secure Supply Chain Summit.” CoRR, vol. abs/2408.16529, 2024, doi:10.48550/ARXIV.2408.16529.
LibreCat
| DOI
2024 | Journal Article | LibreCat-ID: 58369
Tystahl, Greg, et al. “S3C2 Summit 2024-03: Industry Secure Supply Chain Summit.” CoRR, vol. abs/2405.08762, 2024, doi:10.48550/ARXIV.2405.08762.
LibreCat
| DOI
2024 | Conference Paper | LibreCat-ID: 56624 |
Kostan, Anastassija, et al. “Exploring Digital Security and Privacy in Relative Poverty in Germany through Qualitative Interviews.” 33rd USENIX Security Symposium (USENIX Security 24), 2024, pp. 2029–2046.
LibreCat
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 47306
Herbert, Franziska, et al. “A World Full of Privacy and Security (Mis)Conceptions? Findings of a Representative Survey in 12 Countries.” Proceedings of the 2023 CHI Conference on Human Factors in Computing Systems, CHI 2023, Hamburg, Germany, April 23-28, 2023, edited by Albrecht Schmidt et al., ACM, 2023, p. 582:1–582:23, doi:10.1145/3544548.3581410.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47304
Wermke, Dominik, et al. “‘Always Contribute Back’: A Qualitative Study on Security Challenges of the Open Source Supply Chain.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 1545–1560, doi:10.1109/SP46215.2023.10179378.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47299
Krause, Alexander, et al. “Pushed by Accident: A Mixed-Methods Study on Strategies of Handling Secret Information in Source Code Repositories.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47310
Fourné, Marcel, et al. “It’s like Flossing Your Teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 1527–1544, doi:10.1109/SP46215.2023.10179320.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47311
Munyendo, Collins W., et al. “‘In Eighty Percent of the Cases, I Select the Password for Them’: Security and Privacy Challenges, Advice, and Opportunities at Cybercafes in Kenya.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 570–587, doi:10.1109/SP46215.2023.10179410.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47303
Keküllüoglu, Dilara, and Yasemin Acar. “‘We Are a Startup to the Core’: A Qualitative Interview Study on the Security and Privacy Development Practices in Turkish Software Startups.” 44th IEEE Symposium on Security and Privacy, SP 2023, San Francisco, CA, USA, May 21-25, 2023, IEEE, 2023, pp. 2015–2031, doi:10.1109/SP46215.2023.10179339.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47296
Kohno, Tadayoshi, et al. “Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversations.” CoRR, vol. abs/2302.14326, 2023, doi:10.48550/arXiv.2302.14326.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47305
Amft, Sabrina, et al. “‘Would You Give the Same Priority to the Bank and a Game? I Do Not!’ Exploring Credential Management Strategies and Obstacles during Password Manager Setup.” Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, edited by Patrick Gage Kelley and Apu Kapadia, USENIX Association, 2023, pp. 171–190.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47301
Höltervennhoff, Sandra, et al. “‘I Wouldn’t Want My Unsafe Code to Run My Pacemaker’: An Interview Study on the Use, Comprehension, and Perceived Risks of Unsafe Rust.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47298
Mink, Jaron, et al. “‘Security Is Not My Field, I’m a Stats Guy’: A Qualitative Root Cause Analysis of Barriers to Adversarial Machine Learning Defenses in Industry.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47842
Fourné, Marcel, et al. “It’s like Flossing Your Teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security.” 2023 IEEE Symposium on Security and Privacy (SP), IEEE, 2023, doi:10.1109/sp46215.2023.10179320.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47295
Amft, Sabrina, et al. “Lost and Not Found: An Investigation of Recovery Methods for Multi-Factor Authentication.” CoRR, vol. abs/2306.09708, 2023, doi:10.48550/arXiv.2306.09708.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47294
Tran, Mindy, et al. “S3C2 Summit 2202-09: Industry Secure Suppy Chain Summit.” CoRR, vol. abs/2307.15642, 2023, doi:10.48550/arXiv.2307.15642.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47293
Dunlap, Trevor, et al. “S3C2 Summit 2023-02: Industry Secure Supply Chain Summit.” CoRR, vol. abs/2307.16557, 2023, doi:10.48550/arXiv.2307.16557.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 47292
Enck, William, et al. “S3C2 Summit 2023-06: Government Secure Supply Chain Summit.” CoRR, vol. abs/2308.06850, 2023, doi:10.48550/arXiv.2308.06850.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 47300
Kohno, Tadayoshi, et al. “Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversations.” 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, edited by Joseph A. Calandrino and Carmela Troncoso, USENIX Association, 2023.
LibreCat
2023 | Conference Paper | LibreCat-ID: 47312
Neil, Lorenzo, et al. “Who Comes Up with This Stuff? Interviewing Authors to Understand How They Produce Security Advice.” Nineteenth Symposium on Usable Privacy and Security, SOUPS 2023, Anaheim, CA, USA, August 5-7, 2023, USENIX Association, 2023, pp. 283–299.
LibreCat
2023 | Journal Article | LibreCat-ID: 47291
Klemmer, Jan H., et al. “‘Make Them Change It Every Week!’: A Qualitative Exploration of Online Developer Advice on Usable and Secure Authentication.” CoRR, vol. abs/2309.00744, 2023, doi:10.48550/arXiv.2309.00744.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 53362
Amft, Sabrina, et al. “‘We’ve Disabled MFA for You’: An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments.” Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, CCS 2023, Copenhagen, Denmark, November 26-30, 2023, edited by Weizhi Meng et al., ACM, 2023, pp. 3138–3152, doi:10.1145/3576915.3623180.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 49438
Krüger, Stefan, et al. “Securing Your Crypto-API Usage Through Tool Support - A Usability Study.” 2023 IEEE Secure Development Conference (SecDev), IEEE, 2023, doi:10.1109/secdev56634.2023.00015.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 53369
Amft, Sabrina, et al. “‘We’ve Disabled MFA for You’: An Evaluation of the Security and Usability of Multi-Factor Authentication Recovery Deployments.” Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, 2023, pp. 3138–3152.
LibreCat
2023 | Journal Article | LibreCat-ID: 53368
Fourné, Marcel, et al. “A Viewpoint on Human Factors in Software Supply Chain Security: A Research Agenda.” IEEE Security & Privacy, vol. 21, no. 6, IEEE, 2023, pp. 59–63.
LibreCat
2023 | Conference Paper | LibreCat-ID: 53366
Tran, Mindy, et al. “Security, Privacy, and Data-Sharing Trade-Offs When Moving to the United States: Insights from a Qualitative Study.” 2024 IEEE Symposium on Security and Privacy (SP), 2023, pp. 4–4.
LibreCat
2023 | Journal Article | LibreCat-ID: 53348
Fourné, Marcel, et al. “A Viewpoint on Human Factors in Software Supply Chain Security: A Research Agenda.” IEEE Secur. Priv., vol. 21, no. 6, 2023, pp. 59–63, doi:10.1109/MSEC.2023.3316569.
LibreCat
| DOI
2023 | Journal Article | LibreCat-ID: 53352
Simko, Lucy, et al. “The Use and Non-Use of Technology During Hurricanes.” Proc. ACM Hum. Comput. Interact., vol. 7, no. CSCW2, 2023, pp. 1–54, doi:10.1145/3610215.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 46500
Pottebaum, Jens, et al. “Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth.” 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), IEEE, 2023, pp. 379–85, doi:10.1109/eurospw59978.2023.00048.
LibreCat
| Files available
| DOI
| Download (ext.)
2022 | Conference Paper | LibreCat-ID: 47289
Huaman, Nicolas, et al. “If You Can’t Get Them to the Lab: Evaluating a Virtual Study Environment with Security Information Workers.” Eighteenth Symposium on Usable Privacy and Security, SOUPS 2022, Boston, MA, USA, August 7-9, 2022, edited by Sonia Chiasson and Apu Kapadia, USENIX Association, 2022, pp. 313–330.
LibreCat
2022 | Conference Paper | LibreCat-ID: 47844
Jancar, Jan, et al. “‘They’re Not That Hard to Mitigate’: What Cryptographic Library Developers Think About Timing Attacks.” 2022 IEEE Symposium on Security and Privacy (SP), IEEE, 2022, doi:10.1109/sp46214.2022.9833713.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47286
Gutfleisch, Marco, et al. “How Does Usable Security (Not) End Up in Software Products? Results From a Qualitative Interview Study.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 893–910, doi:10.1109/SP46214.2022.9833756.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47287
Stransky, Christian, et al. “27 Years and 81 Million Opportunities Later: Investigating the Use of Email Encryption for an Entire University.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 860–875, doi:10.1109/SP46214.2022.9833755.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47283
Kaur, Harjot, et al. “Where to Recruit for Security Development Studies: Comparing Six Software Developer Samples.” 31st USENIX Security Symposium, USENIX Security 2022, Boston, MA, USA, August 10-12, 2022, edited by Kevin R. B. Butler and Kurt Thomas, USENIX Association, 2022, pp. 4041–4058.
LibreCat
2022 | Journal Article | LibreCat-ID: 47290
Huaman, Nicolas, et al. “They Would Do Better If They Worked Together: Interaction Problems Between Password Managers and the Web.” IEEE Secur. Priv., vol. 20, no. 2, 2022, pp. 49–60, doi:10.1109/MSEC.2021.3123795.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47843
Wermke, Dominik, et al. “Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.” 2022 IEEE Symposium on Security and Privacy (SP), IEEE, 2022, doi:10.1109/sp46214.2022.9833686.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47288
Jancar, Jan, et al. “‘They’re Not That Hard to Mitigate’: What Cryptographic Library Developers Think About Timing Attacks.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 632–649, doi:10.1109/SP46214.2022.9833713.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47285
Wermke, Dominik, et al. “Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 1880–1896, doi:10.1109/SP46214.2022.9833686.
LibreCat
| DOI
2022 | Conference Paper | LibreCat-ID: 47284
Munyendo, Collins W., et al. “‘Desperate Times Call for Desperate Measures’: User Concerns with Mobile Loan Apps in Kenya.” 43rd IEEE Symposium on Security and Privacy, SP 2022, San Francisco, CA, USA, May 22-26, 2022, IEEE, 2022, pp. 2304–2319, doi:10.1109/SP46214.2022.9833779.
LibreCat
| DOI
2022 | Journal Article | LibreCat-ID: 47281
Krause, Alexander, et al. “Committed by Accident: Studying Prevention and Remediation Strategies Against Secret Leakage in Source Code Repositories.” CoRR, vol. abs/2211.06213, 2022, doi:10.48550/arXiv.2211.06213.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 47265
Huaman, Nicolas, et al. “A Large-Scale Interview Study on Information Security in and Attacks against Small and Medium-Sized Enterprises.” 30th USENIX Security Symposium, USENIX Security 2021, August 11-13, 2021, edited by Michael Bailey and Rachel Greenstadt, USENIX Association, 2021, pp. 1235–1252.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47268
Stransky, Christian, et al. “On the Limited Impact of Visualizing Encryption: Perceptions of E2E Messaging Security.” Seventeenth Symposium on Usable Privacy and Security, SOUPS 2021, August 8-10, 2021, edited by Sonia Chiasson, USENIX Association, 2021, pp. 437–454.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47267
Huaman, Nicolas, et al. “They Would Do Better If They Worked Together: The Case of Interaction Problems Between Password Managers and Websites.” 2021 IEEE Symposium on Security and Privacy (SP), IEEE, 2021, doi:10.1109/sp40001.2021.00094.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 47266
Haney, Julie M., et al. “‘It’s the Company, the Government, You and I’: User Perceptions of Responsibility for Smart Home Privacy and Security.” 30th USENIX Security Symposium, USENIX Security 2021, August 11-13, 2021, edited by Michael Bailey and Rachel Greenstadt, USENIX Association, 2021, pp. 411–428.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47264
Oltrogge, Marten, et al. “Why Eve and Mallory Still Love Android: Revisiting TLS (In)Security in Android Applications.” 30th USENIX Security Symposium, USENIX Security 2021, August 11-13, 2021, edited by Michael Bailey and Rachel Greenstadt, USENIX Association, 2021, pp. 4347–4364.
LibreCat
2021 | Conference Paper | LibreCat-ID: 47269
Neil, Lorenzo, et al. “Investigating Web Service Account Remediation Advice.” Seventeenth Symposium on Usable Privacy and Security, SOUPS 2021, August 8-10, 2021, edited by Sonia Chiasson, USENIX Association, 2021, pp. 359–376.
LibreCat
2021 | Dissertation | LibreCat-ID: 47271
Acar, Yasemin. Human Factors in Secure Software Development. University of Marburg, Germany, 2021.
LibreCat
2020 | Book Chapter | LibreCat-ID: 47261
Haney, Julie M., et al. “Smart Home Security and Privacy Mitigations: Consumer Perceptions, Practices, and Challenges.” HCI for Cybersecurity, Privacy and Trust, Springer International Publishing, 2020, doi:10.1007/978-3-030-50309-3_26.
LibreCat
| DOI
2020 | Conference Paper | LibreCat-ID: 47260
Wermke, Dominik, et al. “Cloudy with a Chance of Misconceptions: Exploring Users’ Perceptions and Expectations of Security and Privacy in Cloud Office Suites.” Sixteenth Symposium on Usable Privacy and Security, SOUPS 2020, August 7-11, 2020, edited by Heather Richter Lipford and Sonia Chiasson, USENIX Association, 2020, pp. 359–377.
LibreCat
2020 | Conference Paper | LibreCat-ID: 47262
Gorski, Peter Leo, et al. “Listen to Developers! A Participatory Design Study on Security Warnings for Cryptographic APIs.” Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems, ACM, 2020, doi:10.1145/3313831.3376142.
LibreCat
| DOI
2020 | Conference Paper | LibreCat-ID: 47879
Haney, Julie, et al. Smart Home Security and Privacy Mitigations: Consumer Perceptions, Practices, and Challenges. International Conference on Human-Computer Interaction, Copenhagen, -1, 2020.
LibreCat
2018 | Conference Paper | LibreCat-ID: 47253
Wu, Yuxi, et al. “Your Secrets Are Safe.” Proceedings of the 2018 World Wide Web Conference on World Wide Web - WWW ’18, ACM Press, 2018, doi:10.1145/3178876.3186088.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 47255
Haney, Julie M., et al. “‘We Make It a Big Deal in the Company’: Security Mindsets in Organizations That Develop Cryptographic Products.” Fourteenth Symposium on Usable Privacy and Security, SOUPS 2018, Baltimore, MD, USA, August 12-14, 2018, edited by Mary Ellen Zurko and Heather Richter Lipford, USENIX Association, 2018, pp. 357–373.
LibreCat
2018 | Report | LibreCat-ID: 47876
Haney, Julie, et al. Organizational Views of NIST Cryptographic Standards and Testing and Validation Programs. National Institute of Standards and Technology, 2018, doi:10.6028/nist.ir.8241.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 47256
Gorski, Peter Leo, et al. “Developers Deserve Security Warnings, Too: On the Effect of Integrated Security Advice on Cryptographic API Misuse.” Fourteenth Symposium on Usable Privacy and Security, SOUPS 2018, Baltimore, MD, USA, August 12-14, 2018, edited by Mary Ellen Zurko and Heather Richter Lipford, USENIX Association, 2018, pp. 265–281.
LibreCat
2018 | Conference Paper | LibreCat-ID: 47254
Oltrogge, Marten, et al. “The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators.” 2018 IEEE Symposium on Security and Privacy (SP), IEEE, 2018, doi:10.1109/sp.2018.00005.
LibreCat
| DOI
2018 | Conference Paper | LibreCat-ID: 47252
Wermke, Dominik, et al. “A Large Scale Investigation of Obfuscation Use in Google Play.” Proceedings of the 34th Annual Computer Security Applications Conference, ACSAC 2018, San Juan, PR, USA, December 03-07, 2018, ACM, 2018, pp. 222–235, doi:10.1145/3274694.3274726.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47249
Derr, Erik, et al. “Keep Me Updated: An Empirical Study of Third-Party Library Updatability on Android.” Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2017, doi:10.1145/3133956.3134059.
LibreCat
| DOI
2017 | Journal Article | LibreCat-ID: 47309
Acar, Yasemin, et al. “How Internet Resources Might Be Helping You Develop Faster but Less Securely.” IEEE Secur. Priv., vol. 15, no. 2, 2017, pp. 50–60, doi:10.1109/MSP.2017.24.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47245
Stransky, Christian, et al. “Lessons Learned from Using an Online Platform to Conduct Large-Scale, Online Controlled Security Experiments with Software Developers.” 10th USENIX Workshop on Cyber Security Experimentation and Test, CSET 2017, Vancouver, BC, Canada, August 14, 2017, edited by José M. Fernandez and Mathias Payer, USENIX Association, 2017.
LibreCat
2017 | Conference Paper | LibreCat-ID: 47243
Fischer, Felix, et al. “Stack Overflow Considered Harmful? The Impact of Copy&Paste on Android Application Security.” 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, May 22-26, 2017, IEEE Computer Society, 2017, pp. 121–136, doi:10.1109/SP.2017.31.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47250
Nguyen, Duc Cuong, et al. “A Stitch in Time: Supporting Android Developers in Writing Secure Code.” Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, ACM, 2017, doi:10.1145/3133956.3133977.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47248
Acar, Yasemin, et al. “Developers Need Support, Too: A Survey of Security Advice for Software Developers.” 2017 IEEE Cybersecurity Development (SecDev), IEEE, 2017, doi:10.1109/secdev.2017.17.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47242
Acar, Yasemin, et al. “You Are Not Your Developer, Either: A Research Agenda for Usable Security and Privacy Research Beyond End Users.” 2016 IEEE Cybersecurity Development (SecDev), IEEE, 2017, doi:10.1109/secdev.2016.013.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47246
Acar, Yasemin, et al. “Comparing the Usability of Cryptographic APIs.” 2017 IEEE Symposium on Security and Privacy (SP), IEEE, 2017, doi:10.1109/sp.2017.52.
LibreCat
| DOI
2017 | Conference Paper | LibreCat-ID: 47244
Acar, Yasemin, et al. “Security Developer Studies with GitHub Users: Exploring a Convenience Sample.” Thirteenth Symposium on Usable Privacy and Security, SOUPS 2017, Santa Clara, CA, USA, July 12-14, 2017, USENIX Association, 2017, pp. 81–95.
LibreCat
2017 | Report | LibreCat-ID: 47873
Redmiles, Elissa M., et al. A Summary of Survey Methodology Best Practices for Security and Privacy Researchers. University of Maryland Computer Science Department, 2017, doi:10.13016/M22K2W.
LibreCat
| DOI
2016 | Conference Paper | LibreCat-ID: 47240
Acar, Yasemin, et al. “SoK: Lessons Learned from Android Security Research for Appified Software Platforms.” 2016 IEEE Symposium on Security and Privacy (SP), IEEE, 2016, doi:10.1109/sp.2016.33.
LibreCat
| DOI
2016 | Conference Paper | LibreCat-ID: 47239
Dechand, Sergej, et al. “An Empirical Study of Textual Key-Fingerprint Representations.” 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, August 10-12, 2016, edited by Thorsten Holz and Stefan Savage, USENIX Association, 2016, pp. 193–208.
LibreCat
2016 | Conference Paper | LibreCat-ID: 47241
Acar, Yasemin, et al. “You Get Where You’re Looking for: The Impact of Information Sources on Code Security.” 2016 IEEE Symposium on Security and Privacy (SP), IEEE, 2016, doi:10.1109/sp.2016.25.
LibreCat
| DOI
2015 | Conference Paper | LibreCat-ID: 47233
Perl, Henning, et al. “VCCFinder: Finding Potential Vulnerabilities in Open-Source Projects to Assist Code Audits.” Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, ACM, 2015, doi:10.1145/2810103.2813604.
LibreCat
| DOI
2015 | Conference Paper | LibreCat-ID: 47232
Oltrogge, Marten, et al. “To Pin or Not to Pin-Helping App Developers Bullet Proof Their TLS Connections.” 24th USENIX Security Symposium, USENIX Security 15, Washington, D.C., USA, August 12-14, 2015, edited by Jaeyeon Jung and Thorsten Holz, USENIX Association, 2015, pp. 239–254.
LibreCat
2014 | Conference Paper | LibreCat-ID: 47162
Fahl, Sascha, et al. “Why Eve and Mallory (Also) Love Webmasters.” Proceedings of the 9th ACM Symposium on Information, Computer and Communications Security, ACM, 2014, doi:10.1145/2590296.2590341.
LibreCat
| DOI
2013 | Conference Paper | LibreCat-ID: 47161
Fahl, Sascha, et al. “On the Ecological Validity of a Password Study.” Proceedings of the Ninth Symposium on Usable Privacy and Security, ACM, 2013, doi:10.1145/2501604.2501617.
LibreCat
| DOI